Total
11731 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-1999-0995 | 1 Microsoft | 1 Windows Nt | 2024-08-01 | N/A |
Windows NT Local Security Authority (LSA) allows remote attackers to cause a denial of service via malformed arguments to the LsaLookupSids function which looks up the SID, aka "Malformed Security Identifier Request." | ||||
CVE-1999-0918 | 1 Microsoft | 4 Windows 2000, Windows 95, Windows 98 and 1 more | 2024-08-01 | N/A |
Denial of service in various Windows systems via malformed, fragmented IGMP packets. | ||||
CVE-1999-0867 | 1 Microsoft | 3 Commercial Internet System, Internet Information Server, Site Server | 2024-08-01 | N/A |
Denial of service in IIS 4.0 via a flood of HTTP requests with malformed headers. | ||||
CVE-1999-0726 | 1 Microsoft | 2 Windows 2000, Windows Nt | 2024-08-01 | N/A |
An attacker can conduct a denial of service in Windows NT by executing a program with a malformed file image header. | ||||
CVE-1999-0721 | 1 Microsoft | 2 Windows 2000, Windows Nt | 2024-08-01 | N/A |
Denial of service in Windows NT Local Security Authority (LSA) through a malformed LSA request. | ||||
CVE-1999-0265 | 2 Microware, Novell | 2 Os-9, Netware | 2024-08-01 | N/A |
ICMP redirect messages may crash or lock up a host. | ||||
CVE-1999-0001 | 3 Bsdi, Freebsd, Openbsd | 3 Bsd Os, Freebsd, Openbsd | 2024-08-01 | N/A |
ip_input.c in BSD-derived TCP/IP implementations allows remote attackers to cause a denial of service (crash or hang) via crafted packets. | ||||
CVE-2024-7340 | 1 Weights \& Biases | 1 Weave | 2024-08-01 | 8.8 High |
The Weave server API allows remote users to fetch files from a specific directory, but due to a lack of input validation, it is possible to traverse and leak arbitrary files remotely. In various common scenarios, this allows a low-privileged user to assume the role of the server admin. | ||||
CVE-2024-25131 | 2024-06-03 | 8.8 High | ||
A flaw was found in the MustGather.managed.openshift.io Custom Defined Resource (CRD) of OpenShift Dedicated. A non-privileged user on the cluster can create a MustGather object with a specially crafted file and set the most privileged service account to run the job. This can allow a standard developer user to escalate their privileges to a cluster administrator and pivot to the AWS environment. | ||||
CVE-2023-50977 | 2024-05-28 | 7.5 High | ||
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that there was not reasonable evidence to determine the existence of a vulnerability. See also CVE-2024-36472. | ||||
CVE-2024-26821 | 2024-05-16 | 4.1 Medium | ||
This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | ||||
CVE-2024-26827 | 2024-04-18 | 4.4 Medium | ||
This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | ||||
CVE-2023-1973 | 1 Redhat | 1 Jboss Enterprise Application Platform | 2024-04-04 | 7.5 High |
A flaw was found in Undertow package. Using the FormAuthenticationMechanism, a malicious user could trigger a Denial of Service by sending crafted requests, leading the server to an OutofMemory error, exhausting the server's memory. | ||||
CVE-2024-26628 | 2024-03-20 | 6.0 Medium | ||
This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | ||||
CVE-2021-46946 | 2024-03-08 | 0.0 Low | ||
This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | ||||
CVE-2024-0793 | 1 Redhat | 1 Openshift | 2024-02-07 | 7.7 High |
A flaw was found in kube-controller-manager. This issue occurs when the initial application of a HPA config YAML lacking a .spec.behavior.scaleUp block causes a denial of service due to KCM pods going into restart churn. | ||||
CVE-2022-2232 | 1 Redhat | 1 Red Hat Single Sign On | 2023-11-29 | 7.5 High |
A flaw was found in the Keycloak package. This flaw allows an attacker to utilize an LDAP injection to bypass the username lookup or potentially perform other malicious actions. | ||||
CVE-2021-3487 | 1 Redhat | 1 Enterprise Linux | 2023-11-20 | 0.0 Low |
Non Security Issue. See the binutils security policy for more details, https://sourceware.org/cgit/binutils-gdb/tree/binutils/SECURITY.txt | ||||
CVE-2022-23529 | 2023-11-07 | 0.0 Low | ||
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The issue is not a vulnerability. Notes: none. | ||||
CVE-2021-44907 | 2023-11-07 | 0.0 Low | ||
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none |